Netgear

Cbr40 Firmware

48 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2024-28340

Exploit
  • EPSS 0.25%
  • Veröffentlicht 12.03.2024 17:15:59
  • Zuletzt bearbeitet 27.05.2025 14:23:12

An information leak in the currentsetting.htm component of Netgear CBR40 2.5.0.28, Netgear CBK40 2.5.0.28, and Netgear CBK43 2.5.0.28 allows attackers to obtain sensitive information without any authentication required.

5.4

CVE-2024-28339

Exploit
  • EPSS 0.09%
  • Veröffentlicht 12.03.2024 17:15:59
  • Zuletzt bearbeitet 27.05.2025 14:23:49

An information leak in the debuginfo.htm component of Netgear CBR40 2.5.0.28, Netgear CBK40 2.5.0.28, and Netgear CBK43 2.5.0.28 allows attackers to obtain sensitive information without any authentication required.

9.8

CVE-2023-36187

  • EPSS 4.54%
  • Veröffentlicht 01.09.2023 16:15:08
  • Zuletzt bearbeitet 21.11.2024 08:09:23

Buffer Overflow vulnerability in NETGEAR R6400v2 before version 1.0.4.118, allows remote unauthenticated attackers to execute arbitrary code via crafted URL to httpd.

8.8

CVE-2022-27646

  • EPSS 1.48%
  • Veröffentlicht 29.03.2023 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:56:05

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Although authentication is required to exploit this vulnerability, the existing authentication mech...

8.8

CVE-2022-27644

  • EPSS 0.09%
  • Veröffentlicht 29.03.2023 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:56:05

This vulnerability allows network-adjacent attackers to compromise the integrity of downloaded information on affected installations of NETGEAR R6700v3 1.0.4.120_10.0.91 routers. Authentication is not required to exploit this vulnerability. The speci...

4.8

CVE-2021-45671

  • EPSS 0.22%
  • Veröffentlicht 26.12.2021 01:15:21
  • Zuletzt bearbeitet 21.11.2024 06:32:50

Certain NETGEAR devices are affected by stored XSS. This affects CBR40 before 2.5.0.10, EAX80 before 1.0.1.62, EX7500 before 1.0.0.72, R7900 before 1.0.4.38, R8000 before 1.0.4.68, RAX200 before 1.0.4.120, RBS40V before 2.6.1.4, RBW30 before 2.6.1.4,...

4.8

CVE-2021-45670

  • EPSS 0.45%
  • Veröffentlicht 26.12.2021 01:15:21
  • Zuletzt bearbeitet 21.11.2024 06:32:50

Certain NETGEAR devices are affected by stored XSS. This affects CBR40 before 2.5.0.10, EAX20 before 1.0.0.48, EAX80 before 1.0.1.64, EX6120 before 1.0.0.64, EX6130 before 1.0.0.44, EX7500 before 1.0.0.72, R7000 before 1.0.11.116, R7900 before 1.0.4....

4.8

CVE-2021-45667

  • EPSS 0.45%
  • Veröffentlicht 26.12.2021 01:15:20
  • Zuletzt bearbeitet 21.11.2024 06:32:49

Certain NETGEAR devices are affected by stored XSS. This affects CBR40 before 2.5.0.10, EAX20 before 1.0.0.48, EAX80 before 1.0.1.64, EX6120 before 1.0.0.64, EX6130 before 1.0.0.44, EX7500 before 1.0.0.72, R7960P before 1.4.1.66, RAX200 before 1.0.3....

4.8

CVE-2021-45666

  • EPSS 0.27%
  • Veröffentlicht 26.12.2021 01:15:20
  • Zuletzt bearbeitet 21.11.2024 06:32:49

Certain NETGEAR devices are affected by stored XSS. This affects CBR40 before 2.5.0.10, EAX80 before 1.0.1.64, EX3700 before 1.0.0.90, EX3800 before 1.0.0.90, EX6120 before 1.0.0.64, EX6130 before 1.0.0.44, EX7500 before 1.0.0.72, RBW30 before 2.6.1....

9.8

CVE-2021-45630

  • EPSS 2.18%
  • Veröffentlicht 26.12.2021 01:15:19
  • Zuletzt bearbeitet 21.11.2024 06:32:43

Certain NETGEAR devices are affected by command injection by an unauthenticated attacker. This affects CBR40 before 2.5.0.24, CBR750 before 4.6.3.6, RBK752 before 3.2.17.12, RBR750 before 3.2.17.12, RBS750 before 3.2.17.12, RBK852 before 3.2.17.12, R...